From 2fa4ca95db262267aa6bd46c5e2f74aa42542fc3 Mon Sep 17 00:00:00 2001
From: Nawarian <nickolas@phpsp.org.br>
Date: Sun, 12 Jul 2020 21:53:52 +0200
Subject: [PATCH] Fix bug #75785 by attempt switching endianness on Maker's
 Note

Different manufacturer models may come with a
different endianness (motorola/intel) format. In
order to avoid a big refactor and a gigantic lookup
table, this commit simply attempts to switch the
endianness and proceed when values are acceptable.

Closes GH-5849.
---
 NEWS                                  |   4 ++++
 ext/exif/exif.c                       |  28 +++++++++++++++++---------
 ext/exif/tests/bug75785/P1000506.JPG  | Bin 0 -> 35516 bytes
 ext/exif/tests/bug75785/bug75785.phpt |  17 ++++++++++++++++
 4 files changed, 39 insertions(+), 10 deletions(-)
 create mode 100644 ext/exif/tests/bug75785/P1000506.JPG
 create mode 100644 ext/exif/tests/bug75785/bug75785.phpt

diff --git a/NEWS b/NEWS
index 6b85632037..d79a06a2bb 100644
--- a/NEWS
+++ b/NEWS
@@ -16,6 +16,10 @@ PHP                                                                        NEWS
   . Fixed bug #48585 (com_load_typelib holds reference, fails on second call).
     (cmb)
 
+- Exif:
+  . Fixed bug #75785 (Many errors from exif_read_data).
+    (NÃ­ckolas Daniel da Silva)
+
 - Gettext:
   . Fixed bug #70574 (Tests fail due to relying on Linux fallback behavior for
     gettext()). (Florian Engelhardt)
diff --git a/ext/exif/exif.c b/ext/exif/exif.c
index 4cb36c534b..5e4c23f4e6 100644
--- a/ext/exif/exif.c
+++ b/ext/exif/exif.c
@@ -66,7 +66,7 @@ typedef unsigned char uchar;
 
 #define EFREE_IF(ptr)	if (ptr) efree(ptr)
 
-#define MAX_IFD_NESTING_LEVEL 150
+#define MAX_IFD_NESTING_LEVEL 200
 
 /* {{{ arginfo */
 ZEND_BEGIN_ARG_INFO(arginfo_exif_tagname, 0)
@@ -3173,6 +3173,23 @@ static int exif_process_IFD_in_MAKERNOTE(image_info_type *ImageInfo, char * valu
 
 	NumDirEntries = php_ifd_get16u(dir_start, ImageInfo->motorola_intel);
 
+	/* It can be that motorola_intel is wrongly mapped, let's try inverting it */
+	if ((2+NumDirEntries*12) > value_len) {
+		exif_error_docref(NULL EXIFERR_CC, ImageInfo, E_NOTICE, "Potentially invalid endianess, trying again with different endianness before imminent failure.");
+
+		ImageInfo->motorola_intel = ImageInfo->motorola_intel == 0 ? 1 : 0;
+		NumDirEntries = php_ifd_get16u(dir_start, ImageInfo->motorola_intel);
+	}
+
+	if ((2+NumDirEntries*12) > value_len) {
+		exif_error_docref("exif_read_data#error_ifd" EXIFERR_CC, ImageInfo, E_WARNING, "Illegal IFD size: 2 + 0x%04X*12 = 0x%04X > 0x%04X", NumDirEntries, 2+NumDirEntries*12, value_len);
+		return FALSE;
+	}
+	if ((dir_start - value_ptr) > value_len - (2+NumDirEntries*12)) {
+		exif_error_docref("exif_read_data#error_ifd" EXIFERR_CC, ImageInfo, E_WARNING, "Illegal IFD size: 0x%04X > 0x%04X", (dir_start - value_ptr) + (2+NumDirEntries*12), value_len);
+		return FALSE;
+	}
+
 	switch (maker_note->offset_mode) {
 		case MN_OFFSET_MAKER:
 			offset_base = value_ptr;
@@ -3203,15 +3220,6 @@ static int exif_process_IFD_in_MAKERNOTE(image_info_type *ImageInfo, char * valu
 			break;
 	}
 
-	if ((2+NumDirEntries*12) > value_len) {
-		exif_error_docref("exif_read_data#error_ifd" EXIFERR_CC, ImageInfo, E_WARNING, "Illegal IFD size: 2 + 0x%04X*12 = 0x%04X > 0x%04X", NumDirEntries, 2+NumDirEntries*12, value_len);
-		return FALSE;
-	}
-	if ((dir_start - value_ptr) > value_len - (2+NumDirEntries*12)) {
-		exif_error_docref("exif_read_data#error_ifd" EXIFERR_CC, ImageInfo, E_WARNING, "Illegal IFD size: 0x%04X > 0x%04X", (dir_start - value_ptr) + (2+NumDirEntries*12), value_len);
-		return FALSE;
-	}
-
 	for (de=0;de<NumDirEntries;de++) {
 		size_t offset = 2 + 12 * de;
 		if (!exif_process_IFD_TAG(ImageInfo, dir_start + offset,
diff --git a/ext/exif/tests/bug75785/P1000506.JPG b/ext/exif/tests/bug75785/P1000506.JPG
new file mode 100644
index 0000000000000000000000000000000000000000..3c74b4eee31b2435cd22521921cc4b769cb9f6d7
GIT binary patch
literal 35516
zcmeI52V4`|x9|5PfrQ>WB27S$UZjI`P>O(vo!+Df7O*lPDsm7I5fl-z5CS3yf*_)T
zB1I7!HpC9-QSm4$Dk^zvLOdt;{mbXw`@iqK`?)tWe)szAwb$OWXH7|rnaI4)e2PRp
zT-;p{hGD1yR>XX^v&1<iIszegcWp#N2#FvOjD+|>T?9ly6W(4x93vwPEP*`6!?OLL
z71(+Zv=%#t1lo{2&JbuL(2`)^0al=iF^ENiG&Lp>AH9RZ^52EZjLa!*V2n_C2Nm6b
zb{FV$tCNcCK}$o-ZO}OA0MIq22>ArZ2d_?uj}Apno{qZyex}3@vPS%61HzN^4E0Qu
zm64Hwp}D1jnWdqrvVpm!iMgdQ4Dg?@_#{QguW|Q821cd^2noa1rD25$!a_!2P*Pc%
z$SFd6tdhtzLIS87N<o$uVwJ+EgRqcYDByq*M+1kFPYjeM^bnb{MG!#LPr{&t#T2LP
za@Z_U|BdJg_9}VG4l7JqaR0Yo)KGEy)R~G?5IV@#aB?Bl%)ib&O|~YEj{#e=&d@w6
zf>1b`#s=iPsWUha92B-b1{&Kv6@$T<OxiuQt!5%7pPzN^wSnfzpYnHurshv=mpH04
zwk8e(A6tup=4Z#>fcQ=MROF+F(0$OTj6EMi0|Tt=ud9(%Hg&ZiaX8D^8i$jJhpqGA
z<d!+|*Z!iTRMy<!gg_Wu6Z?xDn~DL6NF18Xp()3v_C*V>Odhr$PB_HN5kuwBG!D(j
zq4_y9u|3vRAcv3&TmQW)^zZqIw6Km9*f8J>RB*6{05RrYcLjvvA@Z**kl<P*dLxVi
z-oLU*<<KI~gSdK$qax4ISCK<cXKP-FQReWg!1y#}xC_8ERM~zAL24XYokP!ncw#%!
z+6ZZ|=VoAHV64dzqs7+59?yi?6P83pNSh-@hwX<ZG>gNp%c1o+#?j}{1{~Uut%?0N
zVrybdW5@_`FV}#1nsCIMa%eNQW-<|){mT!NHUFidza@vZVrybs)@)7mwc&`d<%qFk
zYY0c4h=+BIEMY!gkT)>M0}5}Bm__V-67kD8{LBCHlY&7PK>Hf#8^RG2`d17J2W<~A
zG#!K@*xC(rBwJ^Kj)J2?92bIU@VkNS27e5Pe<j;5It!s#4u2fm9|(TpZ2dJ(0{C$l
zrwsh7*nX&@M7Cd97ojAMIj`o>YdG{;4!w>;Cv)fx9C{On-ol|%Ip&75=UfJJNMq|)
zpwrpf0PbE}**XPu23xm*-Ugc3FPc6=+u7rPfZNgzwkGyJ6Jm(-f;b<tIp(m7L+5bl
ze2)C=;m`#fF?%_#kwT7`B954S9Qq)fW30KrJP)&V9%wp8%u%*~ANVU^&OxvrWuO@x
zF_mmx20KJnrn0UhxS$Zif8E(lj4_<!F3i@%w#git!q$=Sn$N@5>TomTW$UwWPoT0j
z(U->7L>~D#v?xAxEla{2#MyIz5abkqk(_-Hde3xnxX<^VImhKWDyyZWAE`y?SS^yE
zgB<~`)C!?`unj;X&{AuTdTTXME9mpU*V<3a39yV>bF8YiaI(Ahd({2fH_X$u_NW>B
zowXRYt~QyPQhOcit5rj{Y9-N)S}jyv>x53$N}(Fi{k0<K6ZpqKKd&XBp;`<*tvxb%
z7y4%a+ks4o$pV`VHV14TkPj39g}@{*4h#VA0SYf-^79r>(kd|QZLK%#r=Pzird$bk
zYG6|ZLao4gpc>c$lmSP88XynI2MU0F01l)B8NhbHhz{?@z}5o|z&aQ+5by^AfaO3Y
z__Kg)AO|P`s(?~J8`@Wa^#SV(XaVYg9<Ug&1gwEsfB|3xm;vTM5D)@{0Z~8%5Cd!h
zY=IycHw1_PqJS_U21o&7fp{PZSOcsBjsbLl0VF~HHGl?C2z3*%aBetX#7Ok5Bt-Wi
z@dLb|CFy>=(ts>|53e@;DrFXAM38RERHyf%anS3)rqJ!NS9C;qOTSJQhBhrahV-CK
znSK>hrDswM=<Y}Ze01<t(V0vW*dh)(9oP<(0d2qlPyjp!o&p)bMIZ~v1C9WhKsJn#
z12!M5JUxWhpDu_3pe_oC11@w!>?_zLuxns$ZZNlZFgGtc!Zv{47v>TO)*j~PKrf;M
z(Q)!(x)WMTmlGAO2$BzjcHRmS3V|33%yk~vYTy{a0L;Kw0yYMS1>%7S=+gnVlg^L2
zL0_TU(0ZZXM|Vayz}^M!1Gj*F;3QoE)q`!JGtnR&N2ftI1EoMA&<dOf-U9{|nF9QP
zaK&OIUZI1b3UQ<ab0AgNBclo$G6!u5yk{<Sh#^TcB5CrBvs77zIz^EoizzXtV^NGf
zyg`fz6vhZc5eyo#XE2cigBNpxHW$VWtc<ai=LloIz%j-fDxL9#%7A(m0~e@f3{q<t
zLbPT^B2Np$RiKr@q@HI?QcpsAJ;XOa{Aq}fVVGmF444^X43QX!V#$E)G2WvFn0*K1
zE3=oOjyf5_sE^@*+88mYn~{MoGH`T-aT48Nz%{{;!8903m@>>)6|6Nw4zq>1X~BH8
zp=}oU_JPg=oe#PgbOGo>&?TVtU<?C>7-j@M69$uM2ABhGj8WvlAYt>sdV%!;>kHN&
zYyen620u-dkx3PXIg2wSF-e9Z)(>Od1?~d_jP{U0u#bUH06zmm_vKP}2ILsRgK`^q
z9?SIz<KRyRGJx$sCXfYW135rEunI^5)&T1mDJTW(24EAgg<*$E8S>~5gMw&q9r6Q$
zl}r&~Kok%MBmrqa7LW%N0VQCd5<?GxHaS&v5#Dom0G)CIs2l7RId#+vwhy=gzFT1H
z<z%r2IVJ2g*k-xuSc@D5waVcU=j9gQv9R3~U<0rTsF7nbj{wI2I=}#`fNJ19bCKg~
z<W&WKqXB#Yf553K?21d(qh7bF-fEAkDD`<&7&5OiK$d_tU<>F~Wo8;w^=2AXB}bT4
zsfw9ZLH6MF4yW*;46qqh5h$q2$0q~`t12st0HUhw?PIFQ<k%__DIVgt1DQZpl_1In
zazN(+`Bk#004M~#4=Ag8kB(G{qGMIB5FP4_Dt;6Qb}_INSPm2eB~>)^6z2LI^bp}c
zj-m6%;kD*C8LlZuPbKt&hrEjTYyBkTg~BjKi{Wbf0UBOa{aheb6r@-K*CQYcC;=3J
z7oY+BHDn|RRv3`4!I`39#Q{k`8hFoi_iI5<K|QajMng4MQ9kGq;1%#1cnjp!FwyRs
znP{wLnEVMCuX#!S3Mj&>;50x9_zqi|0DjcqXtE{(q1y8}sdgStsXdAF*0$rcS_aNv
z>x~Q6hU3DuF1TndB8dZ%fOKsiCJV>|IE<fB^NO4aWCQ6?-wrkl$N?BNR8mb1MtaY5
zaiXIj$V>=;1L;5pupP(*vVd$L2gn2RfdZfq*as8?B|s@)4>$l$fD7OTcmVSNFTe-z
z1^j^kAP`s#ECrSW9dJ~7fj-~{a0R#sz$=@-1G0t)RX`ok0JH#YU>2YU7yw3q319}8
z1D1d-07qy}F)FKsD*`wM&;bTe1ylnyz)7GUXaG(F%|Hv#3Y-UUIAhX*5}*{w0JZ~}
zzy#b0vcTp6`9OB1GRmn8LIt1;fqg(RFbQ!#fN_8q>i@46CqGAc7x}L(PVRmI6lDG9
zQugOUjO$UxDi0Cmyn}z0a}N`Gs`OxK_alU7s+{utiZKEIyfUJ79&4QW2M9gCm?*tj
zV@{QxtX9u5!XLmY{aIrMmJ*&ttjPJt2t8H$9VIloWJONJhwLZ(Q)T#GLWdO*WpD{m
zu3(K8%$h?eD{@K)7aKsU6RXvcHIu1w$}@*Gz7xyuP)3a7c!=09&PXrTwmb`oR!;4o
zOL+Y9h%z9DC>O9i{w&Y@J%q=f)z_ERH-N)4pEYxD);xXo5s_2nlxM1SAuA_S<s#NR
zr^+B!hL^JDyquN2sdCD*=!lWB<V+P!4HJD`eLZ<IYX^5*6H|K|D|2TJQ{8z!t_$=$
z91PrD!yIRO*x1^c&zWarKX;4CJW~(vXbUgz`HBIyPOkoQ&AeA=1ucvAUmdVa%|uPt
zL`K;}PsQ8b&e_k}+{VS;Y=)Mlva7n8tFwlZ>8xpn5}IDxZoziG)@HVgy{&AP>V>;5
zwOH<9xh!ywpTDP;t@o0Z{!WV{65QrR#=~b1-tK;9@ix2}ufyx{8hj_d4o|^xd@G)V
z?+4E<d<cJsV`&O$YH8AGAMnTc4ZIiDR=fqjgg?N?@Nf8g{0lCeCYVM^`;L#}ukfe%
zZM+Y9-oUTpJ$OIVNAVH-CG>p=wO;%tcs{|Hlr&n}59s|CS|8yr@L^b=KzlX51y8^i
z<No+^JRaYSr{Np%Y`h9@gtlvVC#*N2$9H@Z{|UV=;k9@Xo{s;9AHYvSOcQ<<KLs<d
zhZ%O^=kODFH{K4lN@%Nu*i(2PHnk37Pq63M2=*5Hh>c?t*iZPVjF%)t5+zAONhTp!
z$s~T@*NRB3Fgmfeve$F4h4bw70)7E9*#_l>KRv(N2-}NahJ0LtxzHigC-DZn0A`(z
zC*!GjB<=#MF>Z>h<Kp;4DnBld>*5ahLfj2^#+_JgvvF-)85hOHa0A>LeD3%>+!tSl
zheGdI$W#Kp8_E@U6ds6svRDMY17KYMt3MtDzA$_#J|B05-fnmd9P8z9#FOy|$S@AG
zNP^LfaaEij|CD+s^?vGTDg~#(7L~!LgU^OpB*L~9!Lf109l@i9OF_FF%w{gEdbkHf
zc!2W4eeiJnC`PPw>;%>XYYTP`Ylrn5t44TE!Fm!}iS~A^3)T+oD*M>XgFWzKt)8I%
zcAaYb6+uLMLN=z>InEBA&b$uPmDCvOLaHxy71fbClWIX#qkiF;pzfh1(iYKfQ>|#p
zG(XxXRfHx)i>A)!b>qE9Rw4J0E|E@==%kyZgQQomZX&HC6+%6d6i!-7@+3u(f=Lmi
zl_X=5DanGgm9&GTMUo<El4g-+k~BzqBy-Xz2`49!Uy!a~?=cE^7LYcQ@=3a6Ve)6v
z9ul$leb^Vw5k@W{{YJt_53$qOee8E^5UYe-m0*`4A{UFoHi7QI9$__@4`zhfV*%I$
z>^8O<OTmILLyU?^WBynKRu1tM*h-9vJ|QMj!FFJ6kk9kjX3PW&h4cD3vcy(ltynRZ
z4lNd#K6U|<Cmq3jeEs~1dmVS-X5ha{23#B+1IUPi3MWaZZ1TY5k;&r8zn$9zbI;HJ
z-AhIulli1&JTK9CzI|vD`azxs|Fp1@w43w=Q-r^gL{o9(ha|{G<WY1D`-ZiWrbaM9
zr!W&zA}NKOHR(&<$!m`76*vT+`!40#LD9t8Nb|^Uq(aJdq)5ZjLR3KZBU9m3!h`gb
z-QO6U$3jRrsg!(W(w3COiaZ3LW1plfCzG%nm=)<J)<`~rPV=V2C;RT?PSRJj1Fqsz
ze{TOIjOIy7hfi9$3pWGY3~)2R%>Xw8+zfCtz|8<R1OGS!3mqI6i~NIyhi9sRM}$y3
ze=Q^uiH8RYVj*JKEkrc9S+zf%Q&CeTMkW&izQYHKOc=rvim0#^ne5={Ht!$L`2SB!
zpn;j8iGjJHse#FCbC`k!ES9W4$_56OtUm}RrUqX!_+^Ref6nsvw)W3P{=Xgn&$j(v
zrENic^qTN6WxqASYr<Fm3zKpTj*X5;NQ#dR{uc&;uAag0mDqo62v%=hUHD4T|KR06
zYyY|9{PUCOKPx}~d@KLF75_WU&o%01itE_V5;2%=Xkk!ksBgT&NWe7N+`}-%*xW?U
zRL<0Dwu(i!1=Bpw!ol*R)f2-VhKHx0knfUKlF60DrK@E|rJl+>mqTKeV)G<sOLmC|
zN=%4<5q}|pB(o(SOSX$q#7o6BB;6&Ki${wWNz_TGNvKQAlkgUklAbPCFFPjnRG2BU
zRkTtpOdLrHNgb4;N_k6mh;I{KBm7R-QdB{FrewY3QK_dwp+ZN5o(NwO$rO1dbWv!w
z(01W);Tj=-0e`^)p?cwBkyzn40YiS8fSO>n=wmTyK`lXlfp2^Qd~JNE1YLyMguO+R
zMe2mF(sXI9G)w*&!fQlrM8AmqF2v+NDbOQcM`Q9o5xg#PM>s)<F5)Qggl|H4hs192
z&2hzR)i%Uz?n-q^f3WSxwr^W6?Rb<GlI6dBPBvezV!nF5!oG=v!iS<tS`U_$E-d?f
z&5|VNxdL;t%m!zlu$naeZT13_)3a@?qqTm{^w&+$E7ob$vDaCtoj<F8)<a!c{U;hT
zH4-(B>3r99*Gkp6r@2NeTPsk@ZDz0fN5hNOVz#%<_9)w_ji@isTBiNG?qU5=v)iWp
zrZ@Bpm5Y=jl~vW#wY2q~>8Ti8Rb8(<U8!8zU-iApHl<P}scDO+pH{L~ER<1@`=KB_
zT|y;8Nl5m)<OykC8CRv1%3ZP#Wmm~mOOnNTB|ghE%7!VdpXR9;qhKReC-OnmU*fBr
zozlZ;pA{d<J(iS_4p5mP8YkH-Q?96~kSlAg=r83W;jG}GIzxGj&-#G;MFmS{2X0u@
zvi#W6n!t_AeOFMHG%pVckq)CqNQbvX?T@`1`#i=oc5xhv_jXfr4$_O&`l5V7WvN=<
z^p(oC(=RIrsm+tMklQJrD(@uwU8Yi|N19JoMD~`fk6e<pk<=B*^|Hb82c_F3n<PD?
ze5HM)JEYG_=1uFF5vYl)o)-_5tdhcH3+2)jf)&lwPpM_9rA_yjuoo*97nN$0xuqbb
zn5F0^qb(&OZYXg}qDZ1%OjcY_%v8KUtXX8e(6G=!k<DVe#U;fOgbu>l#1z;dd_?4}
z&~+glp-ce=-#Fi(fQz7p&^w`Qp+!Q@eEzf_v}=5cg1*9b!X-lSf-Cty@vji^q|N3(
zDo`!-R<K{dM(7~_bH1N~xJZ%kuS<@}UWocXdOyJrZSW8Vyy>ApNrF!wiEoJ$A4+-=
zb;N^+4<t$O&#&-I0L#A+>J+wL9{j|&N#QLMYvE<p;9CUXr?O)#LG!Wu&VeX?wl)GS
zz>fEY7*V$0AN*o$|6=fqgP)jX2xtWumDs&l(2Ah>VZ$3hPlFf%@Mpl&0mPyK5Obok
z?F85`U<12u%(gFtru@I^B5XhLjeDX$JYK@Gd|-(=$a_!4FLd?OHHU|9l+heNM|XE<
zarN<oa)Fn-qqmbYVorLZVEFVm8ov4bKXdu(`3B-FBF-t|{PMLh2leaw!3M;a0N|M{
zGW$s@Ua0-OC$l8Y{(3S?5j5wMSr}>R$$?K6upPEGkodPxV-Z_v0Ei>{%l^7HxR#p%
zZU+7vWZ*vYA<96MzZM#eB0wV+5t@L208K<fLV`d>MqWt<3JDoid3kvyB~?`kRSkI!
z4GmRQ&=`#})klOTqbehz`tM$tZAgrUQcxKgQ$Zv#j4XyRJFp{g^WkBAT0-1|SPML4
zN8#b6()joV;FXW~T!ljB;i14?68^;=UWX}SJmM;bb9g1@2UArOC5_T{AEv1})U`|b
z-h8ia9FmmI$1g1-D<?lgLsM&}wu!0PY;y}sM<-_&S2uSLKmP>*3j-G|4h;*Bh>VJk
zS-ocMy5yAg8@6U_+rA@nXIB26g1v=B`}P+fIeM&|UcsoWsz24xc)F?iOv}Yf9hW=1
zx_hqNy4`>0?!EgD2A(~CF*H2#^40IJKa73+^m+Wt*KZT>@Y&SvK>0WOBL@3JqEN^b
zDzQHpDH$M(QFv4gdBx|<rv@iVs2ZiwBpr4iu50I0GxmKi6_Rw5Us~Pd*^CdwF0uCL
z|7?fS|3iE9=MMe3Kg<CnNQPG_F|ru4Ltj3nR|MJ|e;oT^r}KqIySI<~Yjgz06Jl1>
zXIZ4TkFSU+)lt`cS?(LBVLAV->10>bf@GK01q)B@;)}Yz{7!d;)$6_{+8RgeqrbZ;
zlTN74P+_7-zq=);uck+h#5`O1S*E9g7W3?g@$us`0=vqW%*o0cJvGmC_sl(t{`$@1
zrUj~T7W5!>r8}1G*FE0EzNpjMI&f&{R<ns!Px)BXh=9P*?F{ubl?R%i9i2X0_u5m*
zD<(E8DYV1?51oPE@;}R5IVPs`*|`7KfqFQji>_My?$8o65S5a3jBnI2Xlry|;vB*C
zU5j^WJg5$rJ(7ND)Q`6L_(C<xPU~Xp+L)!6POkU=LpvupaQ-y?BKMOgpQe|p9=jiy
zym#)fZ}VIIz3#&|SDic`czD5*y+NBV%Ls_|*fi*#UXtlQVdxXJ<bX@NjM+=OQC%5%
zM~w@&pPHAB-*kW5i}$Y>*x(l`zbn^nv}@8N>y(Arhd#VwsMt)Y_0EA*#i)9-+p|(^
zy1U*i`u@kL!uQ_}S6RE4cW-e&Y(DgK>t)|Vot8_ZdeyUIuagVa{m;k0_+q8#%tX2R
z;k&n0M;$GZ_$YrRLHbQ_Qd8WXSJDkRJLRq~dF5igs3u--Es1Y5gNgW0*k!Jb-l`KL
zqq$}E*0c$~)iN^+zMT3){9FgLrtCS?*BH0S@Av={G5Tw0Pvcg%ZgDj!xwk4&_v#DJ
z;CuR&&22Vj`eRZK2{Nx;oI{T<OKkhLPtd<A>-!GPyqnL@-f)vY_rRk2+o5x6Z<4=M
zZ2D3pC@H+CB(2z@>&n9XVULfi9_B8O$y(l*ma#B)cBq<qM5gE2ocT^4teW&o*Q<*K
z%<Ht<cjiS+RKaKY%o(2|)ly!l58V!Lb_iU5C^<i7{jH7L8m!-p=C*~CZH%)Dmb<?;
ze{02Gu43fUAHFO3L)yI)hHH<vYTR=95vpc!*lMeDQ@`F^qoX80%D43<hX!Pfc(ku~
zw{<PMBUHER`?Bi=b4}7x6q?_7e!L&2;cTuMwd@;-?mHM7y62i^?}5zDIp2Phw!Xb6
z0aKNVtFand?K4yxVUoe?lbx$PShnRn6TQsZ(Ys5w^{lt`y0&SrM(*6#tqby05PEYa
zE8lkM=i_Hf)i>9V>ii(5yu9$t_hnpHm|OkB)+F~4i<x7Ea>Ka^m$EXhixg}%;$0e6
zy8imt`SSVAbBi3F`qr(l%fB-8VXwl*iI>y&F5K8WwA-WGSU*4|ce?$?`MpoNXN2v1
zR^Y@$CXu>h+o{&$(`NE?l;5_FOjJ+j)yk>)B3XOCs;M>KWK@6T&De#n{Z}`=cGN8_
z<{z_NzW3IXFFr}%>aH=2OM0T|O?QmFCvO*NUwr6wC3L#-^TStrq<Thrwx3ASFjikz
z)n#YIpq4f&-_>us*dlD$HtMInbMxLWLVgLOcC8y?CNeYHa?*s|ePrbRc=)(jU!QM)
zKYt^S<4^6)M-rZ{SoO%P@KkCF{q?BGAL=_dd=|_7-QkH_lIQSw>WYFrOjLGfQPca{
z=It+j^sanezEI;^;#=xhKfBW+-c5FPj}%k2_b-aSH)v8@pSoVQ-*0zIX#dYUZ|3xW
ziR9_@S}!muC7gJ{yX`{6k1oA3Qr@)f8(u_B7SKP_D5s{^*j=nL8gnSHexTBytaoFT
zjfDkc^3m2yp|50q%sjK6s{PJpt(<L;=APW(Ny)AA^Q8O?yABIXO7<UY?-(u&x!?EX
zR{2N&WT^uOuSv$5d!26>E;vhZ3h}l#c0b+L|J%Gf>Rl6t_8ZTj+)F2-yAC(~XgU)+
zq5QnD-1+Ki%f`66=rv!1m1mqad{cNe)iUg=MQ(xiX5Pe!g-#(ys*kMh^YVJ<YPWh;
z^dZYfNygWE?M{R#EIGb?*6sqTdEe@^z`MW2U(x8F))>2gRyqHi?9-N~WlMz5nOB%d
zEWyW?^h##$h}HhSdXZP|{;K0c7V#<re8qa3`4WEjnr%qlCVqNz<`EN>9~bw!kIUbq
z{JbCjc}PB{VaKqc2j8`o{HxwNmD>&-m%R2v|7)7>thgV+=f08-WNf6GoGm=MbEEnL
z8`rDef$zI?44LSBRDE+z@IXrP;(dFJ7du%Ao-LU~3+ISrgwifVU1$j%EZb$*nH3oS
zRy)K>_4O-x-NP<sO{Y$;{{BEV`zKZE<^xZus@SHw#tbD}=LO~`o_QEPknKBG-d{NP
zXV+fE4JG}&pA28v?TtDTasP$+7BB6+?~Vu4FTY&YbI)pFe&7V=<*xp4#<H_&eQOiM
z24lvyZP(Y6>K?G%{d&We1qF3iwN~|hol`QcW6QLaSq<L~+<13XctP_A!I+M`3hVL7
z1&OMj<%P3?UMh$F{;j|3M$(1V?tC*lpB=JqTw{(2W+l1vyS%t=`}x@7w@x)nI~-TO
z4H7nQqu$%y^CKoQGSW)S%{o2FVB<)wgQ?;v<+wDz(vGo|PfTRz(L94ENv-`wt%FFp
zyvTf6-how?AG4KaUVgrGtHh?kRTeMa+}akDtaZ@-OTo>bWk(No-1D#)kooSDjYn7b
zX&(1;n-|<Ku-2j~x5kMayF0KpDCNhif`a5=*`^zvdzRmo>t5n^)Gtr2Noh;tZ{r(#
zWUpEm3H8|7CjPj7A}K`MYqN<Z!!O&ikYu+)Q(dr7eW*A<yhp)pQ^U;MB02Jh>PC|r
zkpps$b|Pn$^Nh^KE1my%C#!eSzvPAWYEQG7OU|gqC|tP9$2(?V8zQWI<+XuJTGlpA
zb%~O-FUcol1mqJR9m@%Paj-hE=h3~bzcbOB;~^;rwx}<EsivD})AhN^GkFHxLN9cW
z!ceYeDSzbjU3Q~l($QiCan_<|Mh7=eWW}XBtr*bJb5btEPW4>O9Wh?8!biodvZ=@V
zxB(^c;lPn$_0>!ir+H58Np;YvZlu&W@F>UsfVNo^q6&_F;yohYTK~?l;}Y4z!g^9_
z*HWj@x@xT}OZJX@cY166CS9u2i|=9AikP$V54#lNHkI<(h>Ym$zmv4*OiOy!jT_q@
z?dXxY*7>Ll7x{RsFgfg_(hOZCd%2~vD`MzRLgGf2WbZtxw8ls;3F}rDTvzo5?Yb`)
zZ!i?BK$+hwB<68IEiA|A?fn@|6!L9Tujw<TTn{LBn?GvG-|%VlGXLVNxh`hUCuAR9
zCC#!Gn5~<IFMHrxB-H+LSI5?eC;Wy(zU-dg==yO;<?32&pIB$Ad`nCFngk2~QnR|g
zx8MCOWI}lE*516*rR*bMCR1wLu&es<swYv_f|~|k4sI>p-;=CuIHoXuc7K!6v0bIf
zTIScE`H?qj7X=oO?A3Xw9~f(A`EKhN5F^j~di{On%hHm&i3WVLjdqX3504qF+;BU|
zxLkOC&-l8$ZCUH6M{`6cOZc0_GKPl^N`_K$_dTz_T^B!e-hWp2>#_RUN8##Bbm+tL
z6Ri$DlrhWWp?BQK^rX~0dd5|=FUmS)+wkR>xz+i7BNgJoSyz5qP%qS4udCR&b9dut
zYfwYe%)X>cA-N+f_5Se9aB0`<dy%_uyZVM8pLW@?n78i&)c52$Ch;2n?q58<>TQri
zb&_$>WAAB9^mBnxzWlrpz6h25eM`pzo0J;MlrwoB><|2;Mo+zd&fDmnl~}d!Jdbwa
zw?Shv${P=j#e|=_8nJQP0y){G`F0*zd$h&OOdjdoxu3B9x3I`n=5{-nX!&WLy$z{G
zJ&|X!HXR7Cb#032Joa#RwXa)d*YHv|`$5?~r;X;$WFp%;;Wf6``3x!}ExJ~h?lYIv
zu_7n<W$mnpx@9O&8mt@2i+O&D_uAw65nBx0UfU@y4DQpr|E2S`s=>RX>Y?944koS%
zb+ypK1xwA+CO7(+nd*6VL>;$z=F(|*r%Zj#Tl0y4HANC<436fvjrj{srvBVuC2+=L
zv&ZXMjQzZiNyFW0wK3Q8$0uG`Jzl!@+bW)!R|8BMoPy&uXKi<1k{~;j=iRt?i9++8
zgL%31_T0ONyUWENwffc>tzXEqVp!GY!NA6V?8@;)OBHBe%t%EPGCU<uzFn)-D4y?~
zl)vtN;;ELFS#^sIp7hyw+Sq76I#FPFJa<N^gTdwOSjjI>BTM@GyjSjW?QW@eZPu~g
zgvzP=D%9?&o><%ydGedI&c4iU%|F5dl15JHnkHV~q#C|HKGgH8N{Y5CxyCAS(TB}h
zV=t3jRc3bjOg1Y{n!H%MPUH5CTGMOS&W#vd+Tw`hTE@Sa6m4jzdM=Y=aH(cEc57Gd
z*9BS?SLVhoeL4CrzGC`0y<wMi=@PkROeCNG#wX|Mkf_EVOXKA}UAOCNQ7|@6J$+2L
zUM!(q&|LP-g7|p-8GI`FzTpZv?@+nsN#}UOqp>o3ha5|nShak5`l)jM@(|VD9n;Lx
z?mgcAaN2H*hP@@OdAzeN6wW9$)>Q<Gj@9!dQ}i9%)N&X1RX2psiHU8m=#?yVTK34z
zeA4m9p_r4!VRvuEXI##ibA8s5djqFNbdP$37tBdZ%vG}(YafcNu)B3K?4GVzTA)Vc
z^qIq1?>@ELZ2sU;JR<pMmyqq)^Via2ab-@Fnh^_l?;P^m?zkw_az@K|?1+?Z&QIzF
zZ}%vh7nNR19#T=m!c;SPyZt4SU(ko*%V*CmDvuVkf7Gp+Q@VGRuST4dd`O2(r1>;q
z5hkiCKYgaqtT)MXYx{k-wm*JUy{&fjJ5ith+~<rx-`1i_k?%iGJa1Uyar>cCtn+|%
zc;~Z1i%vJwZSE$Y%rfE|tz&e~Jg{4D(t|s$=}h&$ySH@x0;8dcu>8%F2Uk{&4t6&s
z#Hp<Ph*^`2R+%08$V7Kfq`VEiZ_sn&#jdUd1}}Z0?xE*S=?-J{{Et^RKb6b9H~nYo
zhI?7}dcTRQ)TOn*>&X6i`z}3U&gGaDxnA{65s@7SI(b*Q#0=(QO;!b?J>SkeRXV7n
znH=(NZ|}DRJ>7>Q%4kT(&{yQfTDx6Bm3DjUwO;C42rkOGGa=&LSE-XVuD5u<dc<r$
zjr-eI*+zU;oJ^6eSf;V#U{Pu$<wsZQ<B88qq;V?Q_eSlh%AFgZ2WDAIYhAJ1Rx~U-
zn)OmCxzO8eVUkyp*XrWO*}BJ#j_VW+D45Z14tC#Hv79Yu(>!svda+4|q)hCNS(0Y{
z1vbV{O60Gs)t+%eZ(=>XxKZw!{N7Z){K>kepF#(0q}yCiyG!+$Qw1@y#cRu-I_s<y
zWSyeUJIqoSYJO?A`^Ot<K*OF^+ZFoDnJDdeg^RvB6D?#S{SMbNry33Gy@vPgRx(Pu
zR5t!2TBCUf((*1?tDc=&a#MKS-se&lQln~}SdRIfkQ|d9yNx5M2^*T?Xx+P8TkCX-
zUVi%FWt^jP+S_Hdb4;V&Sr=^Mj&*~MN*zDZ<;9I=^>QSq;Vp456?w@QYP3z=U)wys
z+`cv;DsAY@laZl!TLLFmQOU2UrXi1q55ztUA6!@I>(*v>^~0xfb(7D7=UV)C%6sCc
zll%?P_z>LoV=5SRX15A*oOQCTb~n^)NPKh6V=(DK$*0+STxIg}cAC9=s6mTO{$Vlx
z{6He(l<SCRH1A8Fo>tqpKU1~ubpEm0s^PTU%9^E%)qfjy>1cW!WLL4FB2o8R2Yn;n
zeyElbc{_`7dFJdy56|NQveBFNb;R>MJu^5rX}#PDtCezm?(v4(?AFe)P;0ty&f+XT
z|JyfD>l=59sqWCvE{w-T?J6p6)ykeYvFIYUza%WDyyb=6vrjeAXUsm&&T{7)zZ@h^
z78`3<`y(>3XIyr2f2H(7ak=nsOAgO_C->!L1rt^GFG<R~IBFoatBT>>dpO1R-0wT)
zMnujQQR?XVmgH{Ja&sE?I+gk0zriPd++E;ifSUns2DlmEW`LUkZU(p+;AViE0d5Ak
z8Q^Asn*nYHxEbJPfSUns2DlmEW`LUkZU(p+;AViE0d5Ak8Q^Asn*nYHxEbJPfSUns
z2DlmEW`LUkZU(p+;AViE0d5Ak8Q^Asn*nYHxEbJPfSUns2DlmEW`LUkZU(p+;AViE
zf&XX*9wJBhSvX=LO4k1-Kw<q~0`MDgWC|}2FE0x!AB~sFN9E<E3BXU|5eq0m0e(TE
z0zdKRIMtQJLnia^Q+cVZkbhS(^$UIQo3)(3(1)bZuOG5w|2`l5=d#QWBq{pm5BB}?
Z6W+gx<srOce;fO6epaqbm<mr`|1S~5Hsk;R

literal 0
HcmV?d00001

diff --git a/ext/exif/tests/bug75785/bug75785.phpt b/ext/exif/tests/bug75785/bug75785.phpt
new file mode 100644
index 0000000000..b9f6551185
--- /dev/null
+++ b/ext/exif/tests/bug75785/bug75785.phpt
@@ -0,0 +1,17 @@
+--TEST--
+Bug #75785 fix corrupt EXIF header issues; Related to mixed endianness. (Thank you @Richard Matzinger for providing the test photo)
+--SKIPIF--
+<?php if (!extension_loaded('exif')) print 'skip exif extension not available';?>
+--FILE--
+<?php
+$mixedEndiannessFile = dirname(__FILE__).'/P1000506.JPG';
+$tags = exif_read_data($mixedEndiannessFile, 'EXIF', true, false);
+
+echo $tags['GPS']['GPSLatitude'][0] . PHP_EOL;
+echo $tags['GPS']['GPSLongitude'][0] . PHP_EOL;
+?>
+===DONE===
+--EXPECTF--
+38/1
+122/1
+===DONE===
-- 
2.40.0